James Cochran's repositories
AD-Attack-Defense
Active Directory Security For Red & Blue Team
LOLBAS
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
PowerForensics
PowerForensics provides an all in one platform for live disk forensic analysis
PowerShellSummit2019
Hands on lab materials for the PowerShell Security session
Random
Assorted scripts and one off things
RITA-J
Implementation of RITA (Real Intelligence Threat Analytics) in Jupyter Notebook with improved scoring algorithm.
subTee-gits-backups
subTee gists code backups
threat-hunting-with-notebooks
Repository with Sample threat hunting notebooks on Security Event Log Data Sources
ThreatHunter-Playbook
A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.
ThreatHunting
An informational repo about hunting for adversaries in your IT environment.
Venator
Venator is a python tool used to gather data for proactive detection of malicious activity on macOS devices.
WmiEvent
A PowerShell module to abstract the complexities of Permanent WMI Event Subscriptions